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Listing of Claims; 




Claim l. (Previously Presented) A method compri/sing: 
receiving a request to verify a use of a digital credential 
y a user of a digital credential, the digital credential being 
a digital security mechanism associated with a user's identity, 
the use occurring at a first of a plurality of/ different 
services where the digital credential can be/used; 

verifying the use of the digital credential in response to 
receipt of the request to verify; 

sending a result of the verif icat/ion to the first service; 
storing the result of the verification in an activity log 
in a central service that communicates with each of said 
plurality of different services/ and 

allowing specified users/to access said result . 




Claim 2. (Original) /The method of claim 1 further 
including storing transaction information in the activity log. 



Claim 3, (Original) The method of claim 2, wherein the 
transaction information includes at least one of a message that 
was signed using a/digital signature key of the digital 
credential, a value of a transaction, an online service, an 
internet protogol (IP) address, a date of the transaction and a 
■time of the transaction. 
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Claim 4 . (Original) The method of claim 1 further 
including generating an activity report from the activity log, 
wherein the activity report lists the stored verification 
results. 

Claim 5- (Original) The method of cl^im 4 further 
including associating a name to a digital/signature key of the 
digital credential, wherein the activity report lists the name 
of the digital signature key. 

Claim 6. (Original) The method of claim 4, wherein 
generating the activity report includes generating the activity 
report upon request by an owne^r of the digital credential. 

Claim 7. (Original) /The method of claim 4, wherein 
generating the activity yr-eport includes generating the activity 
report each time the saigital credential is verified . 

Claim 8. (Omginal) The method of claim 4, wherein 
generating the Activity report includes generating a report 
periodically. 

Claim^. (Original) The method of claim 1 further 
including/ analyzing the activity log to detect misuse of the 
digital /credential . 
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Claim 10. (Original) The method of claim 6, wherein 
generating the activity report/ includes listing activity for a 
plurality of digital signature keys associated with the owner. 

Claim 11. (Original) Ipe method of claim l further 
comprising: 

authorizing one or more/ delegates to use a delegated 
digital credential to act on behalf of the owner of the digital 
credential for specified f mictions, wherein verifying the use of 
the digital credential includes determining whether the 
delegated digital credential was authorized for the specific 
use . 

Claim 12. (Previously Presented) The method of claim 4, 
wherein generating an activity report includes generating 



activity reports of the 
allowing comprises alio* 



ielegates of the user and wherein said 
ing said user to view all reports, but 



allowing each said delegate to view only their own activity 



report, and not allowing 
other delegates . 



computer-readable mediun 
stored thereon for causi 



each said delegate to view reports for 



Claim 13. (Previously Presented) An article comprising a 



having computer-executable instructions 
ng a computer to : 



receive a request to verify a use of a digital credential 
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by a user of a digital credential at any of a plurality /of 
different services where the digital credential can be/ used, the 
digital credential being a digital security mechanisjfn associated 
with a user' s identity; 

verify the use of the digital credential in/response to 
receipt of the request to verify from a first ^service of the 
plurality of different services; 

send a result of the verification to yhe first service; 
store a result of the verification ixi an activity log in a 
central service that communicates with/each of said plurality of 
different services; and 

allow specified users to access said result. 

Claim 14 . (Original) Tha/article of claim 13, wherein the 
^ computer- executable instructions cause the computer to store 
transaction information in Activity log. 

Claim 15- (Original) The article of claim 14, ( wherein the 
transaction information includes at least one of a message that 
was signed using a digital signature key of the digital 
credential , a transaction value, an online service processing 
the transaction, /an internet protocol (IP) address of a 
computing devia4 originating the transaction, the date of the 
transaction and the time of the transaction. 
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Claim 16. (Original) The article of claim 13 , wherein the 
computer -executable instructions cause the computer /to generate 
an activity report from the activity log, wherein/the activity 
report lists the stored verification results. 

Claim 17. (Previously Presented) The y&rticle of claim 16, 
wherein the computer-executable instructions cause the computer 
to associate a name to a digital signati/re key of the digital 
credential/ wherein the activity repeat lists the name of the 
digital signature key. 

Claim 18. (Previously Presented) The article of claim 16, 
wherein the computer -executable instructions cause the computer 
to generate the activity report upon receiving a request by an 
owner of the digital credential and wherein said allowing 
comprises allowing sai^f user to view all reports, but allowing 
each said delegate to view only their own activity report, and 
not allowing each ^said delegate to view reportB for other 
delegates . 

Claim 19/ (Original) The article of claim 13, wherein the 
computer-executable instructions cause the computer to analyze 
the activity log to detect misuse of the digital credential. 

Clgfim 20. (Original) The article of claim 17, wherein the 
computer -executable instructions cause the computer to list in 
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the activity report activity for a plurality of digital 
signature keys .associated with the owner according to the name 
of the digital signature key. 

Claim 21. (Original) The article of ciaim 2Q, wherein the 
computer- executable instructions cause the/computer to authorize 
one or more delegates to use a delegated/digital credential to 
act on behalf of the owner of the digitzal credential for 
specified functions and determine whether the delegated digital 
credential was authorized for the specific use. 




Claim 22. (Original) The article of claim 21, wherein the 
computer- executable instruct iorfs cause the computer to generate 
activity reports of the delegates, 

Claim 23. (Previously Presented) A system comprising; 
a server to receive/requests to verify digital credentials 
by a user of a digital /credential at any of a plurality of 
different services where the digital credential can be used, to 
verify the use of tne digital credential in response to receipt 
of requests, and to send results from the verifications to the 
services ; 

an activity log coupled to the server to store the results 
from the verifications in a central service that communicates 
with each of /said plurality of different services; and 
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a communication part, allowing specified users tp access 
said results- 

Claim 24. (Original) The system of claim 2^3 , wherein the 
activity log is configured to store transactior/ information for 
each authentication result . 

Claim 25. (Original) The system of y6lairn 24, wherein the 
transaction information includes at leaac one of a digitally 
signed message, a date of the transaction! a value of the 
transaction/ an online service requesting the authentication, an 
internet protocol (IP) address, a yv-alue of the transaction, and 
a time of the transaction. 

Claim 26. (Previously Presented) The system of claim 23, 
and further comprising an owner database to store information of 
an owner of the digital c/edential and owner -approved delegates 
and wherein said communication element allows said owner to view 
all reports, but alloys each said delegate to view only their 
own report, and not yteports for other delegates • 



Claim 27. (previously Presented) An article comprising a 
computer -readabl^ medium having data structures stored thereon 
comprising: 

a first data field to store a result from an verification 
of a digitay credential by a user of a digital credential at any 

8 
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of a plurality of different services where the digital 
credential can be used; 

a plurality of data fields to store transaction information 
relating to each verification result in a central service that 
communicates with each of said plurality of ^afferent services; 
and 

a data access structure, allowing specified users to access 
said results, 




Claim 28. (Original) The article of claim 27, wherein the 
plurality of data fields store at least one of a digitally 
signed message/ a date of the transaction, a time of the 
transaction, a value of the transaction, an online service, an 
internet protocol (IP) address/of a computing device originating 
the transaction, and goods oy services involved in the 
transaction , 

Claim 29. (Original) The article of claim 27 , wherein the 
data structures furthey include a plurality of data fields to 
store owner and delegate information. 

Claim 30. (Currently Amended) A method comprising: 
receiving use/ information describing a first use of a 
digital credential by an owner of a digital credential, at any 
of a plurality ©f different services where the digital 
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credential can be used, the digital credential being si digital 
security mechanism associated with a user' s the owner's 
identity; 

receiving use information describing a second use of the 
digital credential by a delegate of the owner of the digital 
credential, at any of the plurality of different services where 
the digital credential can be used; 

storing the use information in arf activity log; and 
generating an activity report the delegate based on the 

activity log; 

generating an activity report for the owner based on the 

activity log; 

allowing said owner to/view all reports; and 
allowing said delega/e to view only the activity report for 

the delegate and not th^ activity report for the owner or 

activity reports for ^ther delegates . 



Claim 31- (Omginal) The method of claim 30, wherein the 
use information includes transaction information. 



Claim 32. /{Original) The method of claim 30, wherein the 
use information includes verification information for the 
digital credential . 



10 
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Claim 33. (Original) The method of claim 31, whe^fein the 
transaction information includes at least one of a message that 
was signed, a transaction value, an online service J an internet 
-protocol (IP) address, a value of the transactions, a date of the 
transaction and a the time of the transaction. 

Claim 34. (Original) The method of oaaim 30, wherein the 
digital credential includes a digital signature key, and further 
wherein generating the activity report /includes associating a 
name to the digital signature key ancf listing the name of the 
digital signature key* 

Claim 35. (Previously Presented) The method of claim 30, 
wherein generating the activity report for the owner includes 
generating the activity report upon request by an owner of the 
digital credential 

Claim 36. (Original) The method of claim 30, wherein 
generating the actMty report includes generating the activity 
report each time trie digital credential is verified. 

Claim 37. /(Original) The method of claim 30, wherein 
generating thp activity report includes generating a report 
periodical!] 



II 
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Claim 38. (Original) 
including analyzing the 
digital credential. 



Claim 39. (Previously 
wherein generating the activi 
for a plurality of digital si 
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Thfe method of claim 30 further 
activiby log to detect misuse of the 



Presented) 



The method of claim 35/ 
report includes listing activity 
keys associated with the 



ic nature 



owner . 




Claim 40. (Previously presented) The method of claim 30 
further comprising: 

authorizing one or morel delegates to use a delegated 
digital credential to act orJ behalf of the owner of the digital 
credential for specified functions, wherein verifying the use of 
the digital credential includes determining whether the 
delegated digital credentiafL was authorized for the specific 
use. 

Claim 41. (Previously Presented) The method of claim 30, 
wherein generating the activity report for the owner includes 
generating activity report® of the delegates of the owner. 

Claim 42. (Currently Amended) A method comprising: 
storing use information for a digital credential of a 
plurality of delegates who are delegated to use said digital 
credential by an owner, the digital credential being a digital 
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security mechanism associated with a uacr - & the o wner's 
identity; 

processing the use information for each of said plurality 
of delegates to detect misuse; and 

generating an alert qo the owner based on the detection of ' 
misuse . 



Claim 43. (Original/) The method of claim 42 , wherein 
generating an alert includes generating an activity report based 
on the use information. 

Claim 44. (Original) The method of claim 42 , wherein 



generating an alert inc 
provider . 



ludes alerting a credential service 



Claim 45. (Curren 
wherein the use informalt 
wherein the method f urhlor 



:ly Amended) The method of claim 42, 
ion includes transaction information and 
further comprises allowing said owner 



to view all reports, bu|t 
only their own activity 
delegate to view report 



use information include 
digital credential . 



allowing each said delegate to view 
report, and not allowing each said 
for other delegates. 



Claim 46. (Original) The method of claim 42, wherein the 



verification information for the 
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Claim 47. (Original) Thfe method of claim 45, wherein the 
transaction information includes at least one of a message that 
was signed, a transaction val'ue, an online service r an internet 
protocol (IP) address, a value of the transaction, a date of the 
transaction and a the time df the transaction. 




Claim 48, (Previously/ Presented) A method comprising: 

receiving transaction {requests from a plurality of delegate 
users who are delegated from an owner, wherein the transaction 
requests include digital credentials for the delegate users, the 
digital credentials being pigital security mechanisms associated 
with users' identities; 

processing the transaction requests; and 

communicating transaction information to a central service , 



^ wherein the transaction 



information includes the digital 



credentials of the delegite, the transaction information 



communicated to create, 
activity reports at the 



for the plurality of delegate users, 
central service that said owner is 
allowed to view while each delegate is allowed to view only 
their own activity report and not allowed to view reports for 
other delegates. 

Claim 49. (Original) The method of claim 48, wherein 



processing the transact 
digital credentials to 



.on requests includes communicating the 
he central service for verification. 
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Claim 50. (Originalj The method of claim 48, wherein 

processing the requested ^transaction includes: 
verifying the digital credential; and 
communicating a result of the verification to the 

credential service . 

Claim 51, (Originafl) The method of claim 48 further 
including receiving a activity report from the central service, 
wherein the activity report lists the transaction information 
for each digital credential. 

Claim 52* {Original) The method of claim 48, wherein the 
transaction information includes at least one of a message that 
was signed, a transaction value, an online service, an internet 
protocol (IP) address, [a value of the transaction, a date of the 



transaction and a the 



Claim 53. (Previously Presented) A method comprising: 



receiving a reque 
medical information at 



with the medical profo 



:ime of the transaction. 



at from a medical professional to access 
a remote service, wherein the request 
includes a digital credential for the medical professional, the 
digital credential befng a digital security mechanism associated 

ssional' s identity; 
communicating transaction information describing the access 
request and the digital credential to a credential verification 
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service; 

receiving a verification result from the Credential 
verification service; 

providing the medical professional aofcess to the medical 
information based on the verification re4u.lt; and 

receiving an activity report f ronf the credential 
verification service , wherein the activity report lists the 
transaction information, the digital credential and the 
transaction result. 




Claim 54. (Original) T*he method of claim 53, wherein the 
transaction information includes at least an access type, a date 
of the transaction and a/time of the transaction. 

Claim 55. (Original) The method of claim 53, further 
wherein the digitay credential was provided by a credential 
issuing service aAd a credential service provider. 

Claim 56./ (Original) The method of claim 53, and further 
including: 

receiving a request to access the activity report from an 
owner of ythe digital credential; and 

providing the owner access to the activity report. 
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